Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft
File: oUIVlcmI-yZTZeucofo_F_xXB28.mft (raw, json)
Hash identifier: Kn3YbYIaZ6nWanCQeRgDNmJNHkrc02JUkQoVvQHn9WQ=
Subject key identifier: 0D:13:7A:52:38:05:F0:5C:98:41:20:16:FB:3B:87:14:CF:16:A0:14
Authority key identifier: A1:42:15:95:C9:88:FB:26:53:65:EB:9C:A1:FA:3F:17:FC:57:07:6F
Certificate issuer: /CN=a1421595c988fb265365eb9ca1fa3f17fc57076f
Certificate serial: 019777C155106112F83FEB3338CC137D6E56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUIVlcmI-yZTZeucofo_F_xXB28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft
Manifest number: 1592
Signing time: Mon 16 Jun 2025 08:00:48 +0000
Manifest this update: Mon 16 Jun 2025 08:00:48 +0000
Manifest next update: Tue 17 Jun 2025 08:00:48 +0000
Files and hashes: 1: oUIVlcmI-yZTZeucofo_F_xXB28.crl (hash: HVFfJNdYRPLDrNKb0iajQTDUBn7SHnplq+fVTsDVYQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUIVlcmI-yZTZeucofo_F_xXB28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:c1:55:10:61:12:f8:3f:eb:33:38:cc:13:7d:6e:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1421595c988fb265365eb9ca1fa3f17fc57076f
Validity
Not Before: Jun 16 08:00:48 2025 GMT
Not After : Jun 17 08:00:48 2025 GMT
Subject: CN=0d137a523805f05c98412016fb3b8714cf16a014
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:94:e1:7e:d3:ed:ce:71:f0:5b:65:99:e5:23:
fc:0d:10:10:32:74:c6:ba:ef:e9:1e:d1:c8:a6:c6:
7e:ab:e7:ca:f4:14:f3:3f:09:2f:0e:03:26:1a:e6:
33:87:30:a5:77:bc:3b:07:e0:1a:17:47:d9:86:df:
fd:90:e5:8f:fe:70:b6:bf:a2:a4:80:5d:e5:5e:e4:
46:2a:f1:36:62:ed:3e:32:89:b5:71:ac:17:77:90:
09:63:54:05:20:4c:d1:77:85:43:18:61:87:03:34:
b5:f1:f2:4c:93:cf:1f:5c:73:96:e1:9f:69:9c:53:
33:d6:b3:bc:0e:0a:5d:1a:f9:a5:3c:a8:b3:76:42:
aa:35:c5:0d:12:f8:f2:a0:c1:aa:0f:d3:fd:c2:f9:
55:dc:1c:73:98:05:f9:f8:94:1c:fa:4b:dc:fb:bf:
27:48:3a:56:b9:54:de:e5:e7:f6:1a:ea:8e:c6:c1:
8e:e7:05:6e:d5:55:3f:11:6d:7d:1e:39:fa:7a:f4:
9d:1f:11:4c:5f:89:e4:0d:38:8b:e0:08:c3:35:f7:
d6:93:cc:1a:ea:ad:57:62:87:8d:10:ea:80:24:f3:
3d:7f:dd:07:55:1b:fb:5e:b9:1c:8c:8c:fc:34:92:
a6:01:ec:ae:02:b4:76:ec:38:5f:05:a2:d4:a1:32:
89:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:13:7A:52:38:05:F0:5C:98:41:20:16:FB:3B:87:14:CF:16:A0:14
X509v3 Authority Key Identifier:
keyid:A1:42:15:95:C9:88:FB:26:53:65:EB:9C:A1:FA:3F:17:FC:57:07:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUIVlcmI-yZTZeucofo_F_xXB28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d625c5-790c-4b51-9ef1-baef4ebf68da/1/oUIVlcmI-yZTZeucofo_F_xXB28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:be:49:89:38:95:96:bf:5a:8f:a3:74:64:b4:02:82:94:54:
a6:bb:a9:6c:89:94:38:4b:0b:13:81:c6:79:21:83:6b:8e:39:
ca:66:09:6f:01:98:ef:32:c6:bb:f0:f0:53:c6:08:5a:a2:e8:
ed:e9:83:80:50:01:81:c8:57:2e:7c:67:a1:88:02:28:17:9d:
5d:14:b4:0c:75:15:4f:61:22:ee:b6:f0:50:d2:4d:40:19:a5:
6f:4b:52:a8:f2:1e:e1:77:5f:4e:32:f4:0b:d1:41:77:e6:28:
b3:33:31:66:e9:60:e3:f0:b5:c4:14:b7:cb:30:68:24:01:62:
90:f7:f3:50:5b:5f:c4:38:d8:ea:f3:c9:3f:06:09:71:d4:49:
0a:39:f5:92:c4:45:29:6f:83:62:54:f2:c9:a2:23:38:4e:d6:
91:b0:c9:fa:67:3c:aa:0c:6f:b0:07:84:9c:89:eb:15:c3:6d:
20:ae:b3:fc:bf:13:16:2c:30:78:33:75:6c:d0:00:ed:1c:05:
9e:f6:f8:4e:1f:02:96:9b:40:33:47:55:46:40:6e:a9:18:ca:
7f:bf:ab:53:d9:48:4c:ee:07:b3:85:ef:de:f0:52:24:22:2d:
d1:6a:1d:2d:fe:50:fd:2d:cc:37:93:34:0f:ee:e2:76:0b:0b:
ce:e6:48:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 15:37:08 2025 by rpki-client